sagemaker:AddTags
Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.
Policies (any)
24
Allow (Action)
24
Deny (Action)
0
NotAction
1
Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).
Action reference
SAR-style (unofficial)Service: Amazon SageMaker
Access level
TaggingDescription
Grants permission to add or overwrite one or more tags for the specified Amazon SageMaker resource
Resource types (first 30)
- action
- algorithm
- app
- app-image-config
- artifact
- automl-job
- cluster
- cluster-scheduler-config
- code-repository
- compilation-job
- compute-quota
- context
- data-quality-job-definition
- device
- device-fleet
- domain
- edge-deployment-plan
- edge-packaging-job
- endpoint
- endpoint-config
- experiment
- experiment-trial
- experiment-trial-component
- feature-group
- flow-definition
- hub
- hub-content
- human-task-ui
- hyper-parameter-tuning-job
- image
Allow (Action)
- AWSBatchServiceRolePolicyForSageMaker
- AmazonBedrockFullAccess
- AmazonBedrockMarketplaceAccess
- AmazonBraketFullAccess
- AmazonDataZoneSageMakerEnvironmentRolePermissionsBoundary
- AmazonDataZoneSageMakerManageAccessRolePolicy
- AmazonSageMakerAdmin-ServiceCatalogProductsServiceRolePolicy
- AmazonSageMakerCanvasDataPrepFullAccess
- AmazonSageMakerCanvasFullAccess
- AmazonSageMakerFullAccess
- AmazonSageMakerHyperPodInferenceAccess
- AmazonSageMakerModelGovernanceUseAccess
- AmazonSageMakerModelRegistryFullAccess
- AmazonSageMakerNotebooksServiceRolePolicy
- AmazonSageMakerServiceCatalogProductsCloudformationServiceRolePolicy
- AmazonSageMakerServiceCatalogProductsCodeBuildServiceRolePolicy
- AmazonSageMakerServiceCatalogProductsLambdaServiceRolePolicy
- AmazonSageMakerTrainingPlanCreateAccess
- ResourceGroupsTaggingAPITagUntagSupportedResources
- SageMakerStudioAdminIAMDefaultExecutionPolicy
- SageMakerStudioProjectProvisioningRolePolicy
- SageMakerStudioProjectRoleMachineLearningPolicy
- SageMakerStudioProjectUserRolePermissionsBoundary
- SageMakerStudioUserIAMDefaultExecutionPolicy
Deny (Action)
Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.
Definitions bundle generated 4/7/2026, 3:29:24 AM